<?php

include '../../../../common/widgets/webuploader/WebUploaderConst.php';
//require('../../../../vendor/autoload.php');
//require('../../../../common/env.php');

use common\widgets\webuploader\WebUploaderConst;

/**
 * upload.php
 *
 * Copyright 2013, Moxiecode Systems AB
 * Released under GPL License.
 *
 * License: http://www.plupload.com/license
 * Contributing: http://www.plupload.com/contributing
 */

#!! 注意
#!! 此文件只是个示例，不要用于真正的产品之中。
#!! 不保证代码安全性。

#!! IMPORTANT:
#!! this file is just an example, it doesn't incorporate any security checks and
#!! is not recommended to be used in production environment as it is. Be sure to
#!! revise it and customize to your needs.


// Make sure file is not cached (as it happens for example on iOS devices)
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-store, no-cache, must-revalidate");
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");

// Support CORS
// header("Access-Control-Allow-Origin: *");
// other CORS headers if any...
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
    exit; // finish preflight CORS requests here
}


if ( !empty($_REQUEST[ 'debug' ]) ) {
    $random = rand(0, intval($_REQUEST[ 'debug' ]) );
    if ( $random === 0 ) {
        header("HTTP/1.0 500 Internal Server Error");
        exit;
    }
}

// header("HTTP/1.0 500 Internal Server Error");
// exit;

//客户端非法权限验证，防止HACK
$timestamp = $_POST['timestamp'];
$verifyToken = md5('unique_salt'.$timestamp);

if(empty($_REQUEST['token'])){
    echo ajaxReturn(0,"无权操作！");
    exit();
}
if($_REQUEST['token'] != $verifyToken){
    echo ajaxReturn(0,"无权操作！");
    exit();
}

// 5 minutes execution time
@set_time_limit(5 * 60);

// Uncomment this one to fake upload time
// usleep(5000);

// Settings
// $targetDir = ini_get("upload_tmp_dir") . DIRECTORY_SEPARATOR . "plupload";
$wwwroot = $_SERVER['DOCUMENT_ROOT'];
$baseTargetDir = WebUploaderConst::FLASH_FILE_TMP;	//webuploader的暂存空间
$baseUploadDir = WebUploaderConst::TEMP;	//成功上传到一个临时地址

$folderName = date('Ym');   //年月方式命名，如201612
$targetDir = $wwwroot.'/'.$baseTargetDir;	//webuploader的暂存空间
$uploadDir = $wwwroot.'/'.$baseUploadDir.$folderName.'/';	//成功上传到一个临时地址


//生成当月的文件夹，temp和file文件夹下都同时创建
$fileFolder = $wwwroot.'/'.WebUploaderConst::FILE.$folderName.'/';

$cleanupTargetDir = true; // Remove old files
$maxFileAge = 5 * 3600; // Temp file age in seconds


// Create target dir
if (!file_exists($targetDir)) {
    @mkdir($targetDir);
}

// Create target dir
if (!file_exists($uploadDir)) {
    @mkdir($uploadDir);
}

// Create fileFolder dir
if (!file_exists($fileFolder)) {
    @mkdir($fileFolder);
}

// Get a file name
if (isset($_REQUEST["name"])) {
    $fileName = $_REQUEST["name"];
} elseif (!empty($_FILES)) {
    $fileName = $_FILES["file"]["name"];
} else {
    $fileName = uniqid("file_");
}

$originalFileName = $fileName;	//文件上传时，得到他原始的文件名

$filetype = getExtendName($fileName);
//$randomName = md5(uniqid(rand(), true)); //获取时间并赋值给变量
$randomName = randomChars(6);
$fileName = "{$randomName}.{$filetype}";	//对文件名进行重命名

$filePath = $targetDir.$fileName;
$uploadPath = $uploadDir.$fileName;

// Chunking might be enabled
$chunk = isset($_REQUEST["chunk"]) ? intval($_REQUEST["chunk"]) : 0;
$chunks = isset($_REQUEST["chunks"]) ? intval($_REQUEST["chunks"]) : 1;


// Remove old temp files
if ($cleanupTargetDir) {
    if (!is_dir($targetDir) || !$dir = opendir($targetDir)) {
        echo ajaxReturn(0,"Failed to open temp directory.", "code:100");
        exit();
    }

    while (($file = readdir($dir)) !== false) {
        $tmpfilePath = $targetDir . $file;

        // If temp file is current file proceed to the next
        if ($tmpfilePath == "{$filePath}_{$chunk}.part" || $tmpfilePath == "{$filePath}_{$chunk}.parttmp") {
            continue;
        }

        // Remove temp file if it is older than the max age and is not the current file
        if (preg_match('/\.(part|parttmp)$/', $file) && (@filemtime($tmpfilePath) < time() - $maxFileAge)) {
            @unlink($tmpfilePath);
        }
    }
    closedir($dir);
}


// Open temp file
if (!$out = @fopen("{$filePath}_{$chunk}.parttmp", "wb")) {
    echo ajaxReturn(0,"Failed to open output stream.", "code:102");
    exit();
}

if (!empty($_FILES)) {
    if ($_FILES["file"]["error"] || !is_uploaded_file($_FILES["file"]["tmp_name"])) {
        echo ajaxReturn(0,"Failed to move uploaded file.", "code:103");
        exit();
    }

    // Read binary input stream and append it to temp file
    if (!$in = @fopen($_FILES["file"]["tmp_name"], "rb")) {
        echo ajaxReturn(0,"Failed to open input stream.", "code:101");
        exit();
    }
} else {
    if (!$in = @fopen("php://input", "rb")) {
        echo ajaxReturn(0,"Failed to open input stream.", "code:101");
        exit();
    }
}

while ($buff = fread($in, 4096)) {
    fwrite($out, $buff);
}

@fclose($out);
@fclose($in);

rename("{$filePath}_{$chunk}.parttmp", "{$filePath}_{$chunk}.part");

$index = 0;
$done = true;
for( $index = 0; $index < $chunks; $index++ ) {
    if ( !file_exists("{$filePath}_{$index}.part") ) {
        $done = false;
        break;
    }
}
if ( $done ) {
    if (!$out = @fopen($uploadPath, "wb")) {
        echo ajaxReturn(0,"Failed to open output stream.", "code:102");
        exit();
    }

    if ( flock($out, LOCK_EX) ) {
        for( $index = 0; $index < $chunks; $index++ ) {
            if (!$in = @fopen("{$filePath}_{$index}.part", "rb")) {
                break;
            }

            while ($buff = fread($in, 4096)) {
                fwrite($out, $buff);
            }

            @fclose($in);
            @unlink("{$filePath}_{$index}.part");
        }

        flock($out, LOCK_UN);
    }
    @fclose($out);
}


// Return Success JSON response
$uploadPath = $baseUploadDir.$folderName.'/'.$fileName;
if($_REQUEST['extType'] == 'img'){
    echo ajaxReturn(1, '/'.$uploadPath);
}else{
    echo ajaxReturn(1, '/'.$uploadPath.':'.$originalFileName);
}


/**
 * 返回JSON结果
 * $status 返回状态 0失败，1成功,2跳转，或者其他int扩展数 -1 代表未登录
 * $msg 返回的扩展内容，如status为0的时候，则可以借用$msg来做错误提示。status为1成功时，则可以借用$msg来做一些成功的扩展操作
 * $data 对应的扩展数据，如$result["name"]="wk"; $result["age"] = 12;   在JS中则可以调用result.data.age方式拿到数据
 */
function ajaxReturn($status,$msg,$data = null){
    header('Content-Type:application/json; charset=utf-8');
    $result  =  array();
    $result['status']  =  $status;
    $result['msg'] =  $msg;
    if($data != null){
        $result['data'] = $data;
    }
    return json_encode($result);
}

/**
 * 获取文件后缀
 * @param $filestr：文件整体路径
 * 返回：文件后缀
 */
function getExtendName($filestr){
    $gonten= explode('.',$filestr);
    $gonten = array_reverse($gonten);
    return strtolower($gonten[0]);
}

/**
 * 获取随机字符串，前缀为“日期号+小时+分”
 * @param $length：随机的字符串长度
 */
function randomChars($length) {
    $returnStr='';
    $pattern = '23456789abcdefghijkmnpqrstuvwxyz';
    for($i = 0; $i < $length; $i ++) {
        $returnStr .= $pattern {mt_rand ( 0, strlen($pattern)-1)}; //生成php随机数
    }
    return date('dHi').$returnStr;
}